$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft File: Alr-kZVIIEnyUJPriYEVxr03FEg.mft (raw, json) Hash identifier: DD3shlHTCFnd7IPEZCj/0hA9on0QLyQpnv6AoklWEjI= Subject key identifier: 83:B7:90:2F:6F:BD:8C:09:B1:E2:91:A1:0D:09:36:B7:9E:6D:25:D5 Authority key identifier: 02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 Certificate issuer: /CN=A91BA044/serialNumber=025AFE9195482049F25093EB898115C6BD371448 Certificate serial: 0343 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft Manifest number: 033C Signing time: Wed 13 May 2026 01:09:01 +0000 Manifest this update: Wed 13 May 2026 01:09:01 +0000 Manifest next update: Wed 20 May 2026 01:09:01 +0000 Files and hashes: 1: Alr-kZVIIEnyUJPriYEVxr03FEg.crl (hash: wIslka1ATeTOZ6cs56ygefuz2DRTC02Ki+SDzUm4byY=) 2: 5CE70ACC074E11ED99CF6642C4F9AE02.roa (hash: q+aeOJgllUvaXxmahDweOCiCHQM4aB3x3nz/0WBTZiY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 May 2026 01:09:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 835 (0x343) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA044, serialNumber=025AFE9195482049F25093EB898115C6BD371448 Validity Not Before: May 13 01:09:01 2026 GMT Not After : May 20 01:09:01 2026 GMT Subject: CN=6a03cf2d-5a03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ab:3c:10:62:24:4f:be:e5:aa:b3:71:16:e8: ab:bd:bd:32:ca:dc:6e:fb:22:d3:1c:23:78:ab:d6: a5:15:9f:56:b0:83:8b:48:b7:ee:be:9e:25:09:a6: 1a:42:bd:02:7f:e1:c0:fd:7c:72:dc:fa:65:93:32: 85:a0:d0:52:4d:90:b8:07:17:2c:f0:0e:10:0c:c9: 65:85:27:95:7b:96:e7:65:78:60:ca:7c:9f:16:0a: 7d:a3:ef:45:1f:80:5b:6c:e1:5d:3c:c5:19:27:af: 58:c5:7d:94:1f:9c:eb:ed:e8:93:ff:8c:6b:65:1a: 31:05:5e:0d:0a:a0:aa:e9:62:62:75:41:9e:a3:3b: c9:22:8f:7e:f6:c9:78:42:e8:9b:ac:01:d1:03:76: 16:76:13:4c:98:c6:b5:2b:68:98:dd:06:5f:7f:04: fc:72:7e:f4:6e:07:19:99:8a:a5:f8:fe:38:99:41: 1f:fc:16:50:53:ec:7e:d7:5d:88:09:05:b7:49:e0: d1:1a:b9:ff:f9:53:09:04:c3:f5:fb:42:7d:64:f1: f9:27:e7:e0:73:79:b5:e1:c6:52:0e:0b:92:6d:e3: ff:15:74:87:4e:05:77:68:95:ec:51:29:28:ba:02: 58:a9:c2:0a:6f:5f:64:39:a5:53:cf:23:47:ce:2f: cc:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:B7:90:2F:6F:BD:8C:09:B1:E2:91:A1:0D:09:36:B7:9E:6D:25:D5 X509v3 Authority Key Identifier: keyid:02:5A:FE:91:95:48:20:49:F2:50:93:EB:89:81:15:C6:BD:37:14:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Alr-kZVIIEnyUJPriYEVxr03FEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA044/A7C7E65A074A11ED90A35414C4F9AE02/Alr-kZVIIEnyUJPriYEVxr03FEg.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:ac:c8:ce:31:09:2d:a1:2e:28:e5:09:6b:9b:75:d9:14:01: 61:91:44:8f:5b:04:ec:5f:66:a0:e8:00:1f:ab:41:5b:78:83: d4:fe:cb:2d:80:2e:9d:c3:1f:fd:ff:e6:ca:09:b0:46:b2:ec: 5b:b6:12:81:67:55:99:26:73:8d:c3:ab:1e:ac:38:0a:c0:ed: 6f:81:8b:8b:cf:5a:93:cb:c8:3d:04:3a:71:0a:5f:f6:70:8b: e7:11:e7:3c:22:28:d2:0b:6a:f1:42:a2:60:ce:83:88:e3:5a: fa:b6:88:55:66:1f:a0:c4:19:b6:6a:7f:1e:af:dc:52:e5:6d: 3c:91:cf:87:00:96:d9:f1:af:06:68:c4:65:15:fe:06:cb:93: 4e:61:87:88:d0:7c:1f:e4:e3:ae:ae:36:7d:98:0c:87:77:06: 17:98:5f:06:5e:6a:e3:65:e6:8a:cc:81:51:c7:dd:bf:0d:46: 49:c5:2c:f7:18:2e:db:99:9c:f8:ad:25:cf:22:55:b8:5a:e3: eb:5b:d9:a2:4f:42:45:4e:1a:9d:6d:cf:90:f6:db:1d:0c:95: fb:27:16:8f:63:d1:40:22:5c:c1:e1:f5:b2:e4:96:43:ca:b0: 64:35:7b:57:e4:ec:51:5a:5b:62:d0:f6:c0:35:71:5f:58:cd: ee:ff:76:f2 -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICA0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkEwNDQxMTAvBgNVBAUTKDAyNUFGRTkxOTU0ODIwNDlGMjUwOTNFQjg5ODExNUM2 QkQzNzE0NDgwHhcNMjYwNTEzMDEwOTAxWhcNMjYwNTIwMDEwOTAxWjAYMRYwFAYD VQQDEw02YTAzY2YyZC01YTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6s8EGIkT77lqrNxFuirvb0yytxu+yLTHCN4q9alFZ9WsIOLSLfuvp4lCaYa Qr0Cf+HA/Xxy3PplkzKFoNBSTZC4Bxcs8A4QDMllhSeVe5bnZXhgynyfFgp9o+9F H4BbbOFdPMUZJ69YxX2UH5zr7eiT/4xrZRoxBV4NCqCq6WJidUGeozvJIo9+9sl4 QuibrAHRA3YWdhNMmMa1K2iY3QZffwT8cn70bgcZmYql+P44mUEf/BZQU+x+112I CQW3SeDRGrn/+VMJBMP1+0J9ZPH5J+fgc3m14cZSDguSbeP/FXSHTgV3aJXsUSko ugJYqcIKb19kOaVTzyNHzi/MmwIDAQABo4ICczCCAm8wHQYDVR0OBBYEFIO3kC9v vYwJseKRoQ0JNreebSXVMB8GA1UdIwQYMBaAFAJa/pGVSCBJ8lCT64mBFca9NxRI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTA0NC9BN0M3RTY1QTA3 NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlFbnlVSlByaVlFVnhyMDNG RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Fsci1rWlZJSUVueVVKUHJpWUVWeHIwM0ZFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTA0NC9BN0M3RTY1QTA3NEExMUVEOTBBMzU0MTRDNEY5QUUwMi9BbHIta1pWSUlF bnlVSlByaVlFVnhyMDNGRWcubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAjqzIzjEJLaEuKOUJa5t12RQBYZFEj1sE7F9moOgAH6tBW3iD1P7LLYAuncMf /f/mygmwRrLsW7YSgWdVmSZzjcOrHqw4CsDtb4GLi89ak8vIPQQ6cQpf9nCL5xHn PCIo0gtq8UKiYM6DiONa+raIVWYfoMQZtmp/Hq/cUuVtPJHPhwCW2fGvBmjEZRX+ BsuTTmGHiNB8H+Tjrq42fZgMh3cGF5hfBl5q42XmisyBUcfdvw1GScUs9xgu25mc +K0lzyJVuFrj61vZok9CRU4anW3PkPbbHQyV+ycWj2PRQCJcweH1suSWQ8qwZDV7 V+TsUVpbYtD2wDVxX1jN7v928g== -----END CERTIFICATE-----Generated at Wed May 13 11:16:56 2026 by rpki-client